// Copyright (C) 2014 The Syncthing Authors. // // This program is free software: you can redistribute it and/or modify it // under the terms of the GNU General Public License as published by the Free // Software Foundation, either version 3 of the License, or (at your option) // any later version. // // This program is distributed in the hope that it will be useful, but WITHOUT // ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or // FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for // more details. // // You should have received a copy of the GNU General Public License along // with this program. If not, see . // Adapted from https://github.com/jackpal/Taipei-Torrent/blob/dd88a8bfac6431c01d959ce3c745e74b8a911793/IGD.go // Copyright (c) 2010 Jack Palevich (https://github.com/jackpal/Taipei-Torrent/blob/dd88a8bfac6431c01d959ce3c745e74b8a911793/LICENSE) // Package upnp implements UPnP InternetGatewayDevice discovery, querying, and port mapping. package upnp import ( "bufio" "bytes" "encoding/xml" "errors" "fmt" "io/ioutil" "net" "net/http" "net/url" "regexp" "strings" "sync" "time" ) // A container for relevant properties of a UPnP InternetGatewayDevice. type IGD struct { uuid string friendlyName string services []IGDService url *url.URL localIPAddress string } // The InternetGatewayDevice's UUID. func (n *IGD) UUID() string { return n.uuid } // The InternetGatewayDevice's friendly name. func (n *IGD) FriendlyName() string { return n.friendlyName } // The InternetGatewayDevice's friendly identifier (friendly name + IP address). func (n *IGD) FriendlyIdentifier() string { return "'" + n.FriendlyName() + "' (" + strings.Split(n.URL().Host, ":")[0] + ")" } // The URL of the InternetGatewayDevice's root device description. func (n *IGD) URL() *url.URL { return n.url } // A container for relevant properties of a UPnP service of an IGD. type IGDService struct { serviceID string serviceURL string serviceURN string } func (s *IGDService) ID() string { return s.serviceID } type Protocol string const ( TCP Protocol = "TCP" UDP = "UDP" ) type upnpService struct { ServiceID string `xml:"serviceId"` ServiceType string `xml:"serviceType"` ControlURL string `xml:"controlURL"` } type upnpDevice struct { DeviceType string `xml:"deviceType"` FriendlyName string `xml:"friendlyName"` Devices []upnpDevice `xml:"deviceList>device"` Services []upnpService `xml:"serviceList>service"` } type upnpRoot struct { Device upnpDevice `xml:"device"` } // Discover discovers UPnP InternetGatewayDevices. // The order in which the devices appear in the result list is not deterministic. func Discover() []IGD { var result []IGD l.Infoln("Starting UPnP discovery...") timeout := 3 // Search for InternetGatewayDevice:2 devices result = append(result, discover("urn:schemas-upnp-org:device:InternetGatewayDevice:2", timeout, result)...) // Search for InternetGatewayDevice:1 devices // InternetGatewayDevice:2 devices that correctly respond to the IGD:1 request as well will not be re-added to the result list result = append(result, discover("urn:schemas-upnp-org:device:InternetGatewayDevice:1", timeout, result)...) if len(result) > 0 && debug { l.Debugln("UPnP discovery result:") for _, resultDevice := range result { l.Debugln("[" + resultDevice.uuid + "]") for _, resultService := range resultDevice.services { l.Debugln("* [" + resultService.serviceID + "] " + resultService.serviceURL) } } } suffix := "devices" if len(result) == 1 { suffix = "device" } l.Infof("UPnP discovery complete (found %d %s).", len(result), suffix) return result } // Search for UPnP InternetGatewayDevices for seconds, ignoring responses from any devices listed in knownDevices. // The order in which the devices appear in the result list is not deterministic func discover(deviceType string, timeout int, knownDevices []IGD) []IGD { ssdp := &net.UDPAddr{IP: []byte{239, 255, 255, 250}, Port: 1900} tpl := `M-SEARCH * HTTP/1.1 Host: 239.255.255.250:1900 St: %s Man: "ssdp:discover" Mx: %d ` searchStr := fmt.Sprintf(tpl, deviceType, timeout) search := []byte(strings.Replace(searchStr, "\n", "\r\n", -1)) if debug { l.Debugln("Starting discovery of device type " + deviceType + "...") } var results []IGD resultChannel := make(chan IGD, 8) socket, err := net.ListenMulticastUDP("udp4", nil, &net.UDPAddr{IP: ssdp.IP}) if err != nil { l.Infoln(err) return results } defer socket.Close() // Make sure our socket gets closed err = socket.SetDeadline(time.Now().Add(time.Duration(timeout) * time.Second)) if err != nil { l.Infoln(err) return results } if debug { l.Debugln("Sending search request for device type " + deviceType + "...") } var resultWaitGroup sync.WaitGroup _, err = socket.WriteTo(search, ssdp) if err != nil { l.Infoln(err) return results } if debug { l.Debugln("Listening for UPnP response for device type " + deviceType + "...") } // Listen for responses until a timeout is reached for { resp := make([]byte, 1500) n, _, err := socket.ReadFrom(resp) if err != nil { if e, ok := err.(net.Error); !ok || !e.Timeout() { l.Infoln(err) //legitimate error, not a timeout. } break } else { // Process results in a separate go routine so we can immediately return to listening for more responses resultWaitGroup.Add(1) go handleSearchResponse(deviceType, knownDevices, resp, n, resultChannel, &resultWaitGroup) } } // Wait for all result handlers to finish processing, then close result channel resultWaitGroup.Wait() close(resultChannel) // Collect our results from the result handlers using the result channel for result := range resultChannel { // Check for existing results (some routers send multiple response packets) for _, existingResult := range results { if existingResult.uuid == result.uuid { if debug { l.Debugln("Already processed device with UUID", existingResult.uuid, "continuing...") } continue } } // No existing results, okay to append results = append(results, result) } if debug { l.Debugln("Discovery for device type " + deviceType + " finished.") } return results } func handleSearchResponse(deviceType string, knownDevices []IGD, resp []byte, length int, resultChannel chan<- IGD, resultWaitGroup *sync.WaitGroup) { defer resultWaitGroup.Done() // Signal when we've finished processing if debug { l.Debugln("Handling UPnP response:\n\n" + string(resp[:length])) } reader := bufio.NewReader(bytes.NewBuffer(resp[:length])) request := &http.Request{} response, err := http.ReadResponse(reader, request) if err != nil { l.Infoln(err) return } respondingDeviceType := response.Header.Get("St") if respondingDeviceType != deviceType { l.Infoln("Unrecognized UPnP device of type " + respondingDeviceType) return } deviceDescriptionLocation := response.Header.Get("Location") if deviceDescriptionLocation == "" { l.Infoln("Invalid IGD response: no location specified.") return } deviceDescriptionURL, err := url.Parse(deviceDescriptionLocation) if err != nil { l.Infoln("Invalid IGD location: " + err.Error()) } deviceUSN := response.Header.Get("USN") if deviceUSN == "" { l.Infoln("Invalid IGD response: USN not specified.") return } deviceUUID := strings.TrimLeft(strings.Split(deviceUSN, "::")[0], "uuid:") matched, err := regexp.MatchString("[a-fA-F0-9]{8}-[a-fA-F0-9]{4}-[a-fA-F0-9]{4}-[a-fA-F0-9]{4}-[a-fA-F0-9]{12}", deviceUUID) if !matched { l.Infoln("Invalid IGD response: invalid device UUID", deviceUUID, "(continuing anyway)") } // Don't re-add devices that are already known for _, knownDevice := range knownDevices { if deviceUUID == knownDevice.uuid { if debug { l.Debugln("Ignoring known device with UUID " + deviceUUID) } return } } response, err = http.Get(deviceDescriptionLocation) if err != nil { l.Infoln(err) return } defer response.Body.Close() if response.StatusCode >= 400 { l.Infoln(errors.New(response.Status)) return } var upnpRoot upnpRoot err = xml.NewDecoder(response.Body).Decode(&upnpRoot) if err != nil { l.Infoln(err) return } services, err := getServiceDescriptions(deviceDescriptionLocation, upnpRoot.Device) if err != nil { l.Infoln(err) return } // Figure out our IP number, on the network used to reach the IGD. // We do this in a fairly roundabout way by connecting to the IGD and // checking the address of the local end of the socket. I'm open to // suggestions on a better way to do this... localIPAddress, err := localIP(deviceDescriptionURL) if err != nil { l.Infoln(err) return } igd := IGD{ uuid: deviceUUID, friendlyName: upnpRoot.Device.FriendlyName, url: deviceDescriptionURL, services: services, localIPAddress: localIPAddress, } resultChannel <- igd if debug { l.Debugln("Finished handling of UPnP response.") } } func localIP(url *url.URL) (string, error) { conn, err := net.Dial("tcp", url.Host) if err != nil { return "", err } defer conn.Close() localIPAddress, _, err := net.SplitHostPort(conn.LocalAddr().String()) if err != nil { return "", err } return localIPAddress, nil } func getChildDevices(d upnpDevice, deviceType string) []upnpDevice { var result []upnpDevice for _, dev := range d.Devices { if dev.DeviceType == deviceType { result = append(result, dev) } } return result } func getChildServices(d upnpDevice, serviceType string) []upnpService { var result []upnpService for _, svc := range d.Services { if svc.ServiceType == serviceType { result = append(result, svc) } } return result } func getServiceDescriptions(rootURL string, device upnpDevice) ([]IGDService, error) { var result []IGDService if device.DeviceType == "urn:schemas-upnp-org:device:InternetGatewayDevice:1" { descriptions := getIGDServices(rootURL, device, "urn:schemas-upnp-org:device:WANDevice:1", "urn:schemas-upnp-org:device:WANConnectionDevice:1", []string{"urn:schemas-upnp-org:service:WANIPConnection:1", "urn:schemas-upnp-org:service:WANPPPConnection:1"}) result = append(result, descriptions...) } else if device.DeviceType == "urn:schemas-upnp-org:device:InternetGatewayDevice:2" { descriptions := getIGDServices(rootURL, device, "urn:schemas-upnp-org:device:WANDevice:2", "urn:schemas-upnp-org:device:WANConnectionDevice:2", []string{"urn:schemas-upnp-org:service:WANIPConnection:2", "urn:schemas-upnp-org:service:WANPPPConnection:1"}) result = append(result, descriptions...) } else { return result, errors.New("[" + rootURL + "] Malformed root device description: not an InternetGatewayDevice.") } if len(result) < 1 { return result, errors.New("[" + rootURL + "] Malformed device description: no compatible service descriptions found.") } else { return result, nil } } func getIGDServices(rootURL string, device upnpDevice, wanDeviceURN string, wanConnectionURN string, serviceURNs []string) []IGDService { var result []IGDService devices := getChildDevices(device, wanDeviceURN) if len(devices) < 1 { l.Infoln("[" + rootURL + "] Malformed InternetGatewayDevice description: no WANDevices specified.") return result } for _, device := range devices { connections := getChildDevices(device, wanConnectionURN) if len(connections) < 1 { l.Infoln("[" + rootURL + "] Malformed " + wanDeviceURN + " description: no WANConnectionDevices specified.") } for _, connection := range connections { for _, serviceURN := range serviceURNs { services := getChildServices(connection, serviceURN) if len(services) < 1 && debug { l.Debugln("[" + rootURL + "] No services of type " + serviceURN + " found on connection.") } for _, service := range services { if len(service.ControlURL) == 0 { l.Infoln("[" + rootURL + "] Malformed " + service.ServiceType + " description: no control URL.") } else { u, _ := url.Parse(rootURL) replaceRawPath(u, service.ControlURL) if debug { l.Debugln("[" + rootURL + "] Found " + service.ServiceType + " with URL " + u.String()) } service := IGDService{serviceID: service.ServiceID, serviceURL: u.String(), serviceURN: service.ServiceType} result = append(result, service) } } } } } return result } func replaceRawPath(u *url.URL, rp string) { var p, q string fs := strings.Split(rp, "?") p = fs[0] if len(fs) > 1 { q = fs[1] } if p[0] == '/' { u.Path = p } else { u.Path += p } u.RawQuery = q } func soapRequest(url, service, function, message string) ([]byte, error) { tpl := ` %s ` var resp []byte body := fmt.Sprintf(tpl, message) req, err := http.NewRequest("POST", url, strings.NewReader(body)) if err != nil { return resp, err } req.Header.Set("Content-Type", `text/xml; charset="utf-8"`) req.Header.Set("User-Agent", "syncthing/1.0") req.Header.Set("SOAPAction", fmt.Sprintf(`"%s#%s"`, service, function)) req.Header.Set("Connection", "Close") req.Header.Set("Cache-Control", "no-cache") req.Header.Set("Pragma", "no-cache") if debug { l.Debugln("SOAP Request URL: " + url) l.Debugln("SOAP Action: " + req.Header.Get("SOAPAction")) l.Debugln("SOAP Request:\n\n" + body) } r, err := http.DefaultClient.Do(req) if err != nil { return resp, err } resp, _ = ioutil.ReadAll(r.Body) if debug { l.Debugln("SOAP Response:\n\n" + string(resp) + "\n") } r.Body.Close() if r.StatusCode >= 400 { return resp, errors.New(function + ": " + r.Status) } return resp, nil } // Add a port mapping to all relevant services on the specified InternetGatewayDevice. // Port mapping will fail and return an error if action is fails for _any_ of the relevant services. // For this reason, it is generally better to configure port mapping for each individual service instead. func (n *IGD) AddPortMapping(protocol Protocol, externalPort, internalPort int, description string, timeout int) error { for _, service := range n.services { err := service.AddPortMapping(n.localIPAddress, protocol, externalPort, internalPort, description, timeout) if err != nil { return err } } return nil } // Delete a port mapping from all relevant services on the specified InternetGatewayDevice. // Port mapping will fail and return an error if action is fails for _any_ of the relevant services. // For this reason, it is generally better to configure port mapping for each individual service instead. func (n *IGD) DeletePortMapping(protocol Protocol, externalPort int) error { for _, service := range n.services { err := service.DeletePortMapping(protocol, externalPort) if err != nil { return err } } return nil } type soapGetExternalIPAddressResponseEnvelope struct { XMLName xml.Name Body soapGetExternalIPAddressResponseBody `xml:"Body"` } type soapGetExternalIPAddressResponseBody struct { XMLName xml.Name GetExternalIPAddressResponse getExternalIPAddressResponse `xml:"GetExternalIPAddressResponse"` } type getExternalIPAddressResponse struct { NewExternalIPAddress string `xml:"NewExternalIPAddress"` } // Add a port mapping to the specified IGD service. func (s *IGDService) AddPortMapping(localIPAddress string, protocol Protocol, externalPort, internalPort int, description string, timeout int) error { tpl := ` %d %s %d %s 1 %s %d ` body := fmt.Sprintf(tpl, s.serviceURN, externalPort, protocol, internalPort, localIPAddress, description, timeout) _, err := soapRequest(s.serviceURL, s.serviceURN, "AddPortMapping", body) if err != nil { return err } return nil } // Delete a port mapping from the specified IGD service. func (s *IGDService) DeletePortMapping(protocol Protocol, externalPort int) error { tpl := ` %d %s ` body := fmt.Sprintf(tpl, s.serviceURN, externalPort, protocol) _, err := soapRequest(s.serviceURL, s.serviceURN, "DeletePortMapping", body) if err != nil { return err } return nil } // Query the IGD service for its external IP address. // Returns nil if the external IP address is invalid or undefined, along with any relevant errors func (s *IGDService) GetExternalIPAddress() (net.IP, error) { tpl := `` body := fmt.Sprintf(tpl, s.serviceURN) response, err := soapRequest(s.serviceURL, s.serviceURN, "GetExternalIPAddress", body) if err != nil { return nil, err } envelope := &soapGetExternalIPAddressResponseEnvelope{} err = xml.Unmarshal(response, envelope) if err != nil { return nil, err } result := net.ParseIP(envelope.Body.GetExternalIPAddressResponse.NewExternalIPAddress) return result, nil }